-
Notifications
You must be signed in to change notification settings - Fork 259
Add Data.Nat.Bounded
#2257
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add Data.Nat.Bounded
#2257
Conversation
src/Data/Nat/Bounded.agda
Outdated
constructor ⟦_⟧< | ||
field | ||
value : ℕ | ||
.{{bounded}} : value < n |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I don't think we very often have instance
s floating around of type a < b
. Does this get inferred often?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Well, that had been my thinking underlying #1998 and (the reverted parts of) #2000 ... but indeed reimplementing this via Data.Refinement
wouldn't introduce that extra twist. I had the ... even 'gut feeling' seems a bit strong ... sense that in suitable deployment contexts (fixed-width arithmetic; positional notation for numerals; ...) it might be the case the ambient instances would be available from the context ... but perhaps you're correct... UPDATED: unless it's replaced by #2000 's T (value <ᵇ n)
?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I like the idea of adding BoundedNat
as an equivalent for Fin
, but I think the 'experiment' of using an instance for bounded
is premature.
Supporting evidence: in code that Conor and I were playing around with, we had exactly BoundedNat
in our extensional universe as our definition of Fin
, and we did have to supply the proof a non-trivial number of times. (That the proof was irrelevant without needed Agda's irrelevance machinery was what we were really after.)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
OK, so that's two of you... so either:
- I remove the
instance
bracketing (easy); - I go all-out for
T (value <ᵇ n)
as above (more involved, but most of the machinery is already in Refactoring (inversion) properties of_<_
onNat
, plus consequences #2000 )
I guess it's the first choice, then, with the second as a possible downstream refactoring? DONE.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
NB making bounded
an 'ordinary' (even if irrelevant
) field vitiates somewhat my choice of ⟦_⟧<
as a constructor, which could be used 'bare', without bracketing, as a pattern constructor, in favour of ⟦_⟧<_
with the explicit bound argument, and the value
argument position now mostly redundant... oh well. The redundancy is harmless, unless someone else has a compelling improvement on my notation?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The addition of a Number
instance with Constraint m = T (m <ᵇ n)
biases towards the second alternative...
... but stdlib
style suggests using True (m <? n)
instead... cf. Data.Fin.Literals
Any comment on the trade-offs between the two, given that the latter is much more indirect than the former...?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I've found dealing with stuff like T (m <ᵇ n)
to be pure evil in an open context, i.e. where one (or both) of m
and n
are not values. I think that design is too biased towards "is a natural number" and makes "will be a natural number" horrible.
Turns out Agda's used more as a proof assistant (unlike say, Idris), so that computation-oriented designs seem to hinder.
src/Data/Nat/Bounded.agda
Outdated
constructor ⟦_⟧< | ||
field | ||
value : ℕ | ||
.{{bounded}} : value < n |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I like the idea of adding BoundedNat
as an equivalent for Fin
, but I think the 'experiment' of using an instance for bounded
is premature.
Supporting evidence: in code that Conor and I were playing around with, we had exactly BoundedNat
in our extensional universe as our definition of Fin
, and we did have to supply the proof a non-trivial number of times. (That the proof was irrelevant without needed Agda's irrelevance machinery was what we were really after.)
|
||
{-# OPTIONS --cubical-compatible --safe #-} | ||
|
||
module Data.Nat.Bounded where |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
So to touch on your question of whether this belongs in the library or a readme file, I guess my question is what circumstances is this easier to work with than Fin
? In general we try to avoid duplicate but equivalent definitions unless there is clear reason that sometimes one representation is easier to work with than the other...
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks, Matthew! I can think of two or three, some already in the initial preamble (which was really about helping someone solve a related problem of representation, where Fin
didn't seem to fit well):
- fixed-width arithmetic (or even: its extension to variable-widths, but in a way which retains predictable/computable bounds);
Digit
bases for arithmetic, as a specialised instance/mode of use of the above;- revising the 'specification' of
Data.Nat.DivMod
, to avoid the marshalling/unmarshalling required by the use ofFin
to ensure thatmod
is suitably bounded.
Now, none of these could be said to be a deal-breaker, but I increasingly wonder whether Fin
is better suited to its use as an indexing type (for Vec
, List
, de Bruijn representations, Reflection
/deeply embedded syntaxes more generally, etc.), with ℕ<
as an arithmetic type/Number
instance... cf. #2073 which I might now think makes the 'wrong' choice in using Fin
...
Perhaps other pros (and cons!) might be lurking off-stage...
... UPDATED: (pro)
- re: 3rd point above. This might (eventually) lead to the deprecation of
Data.Nat.DivMod.WithK
(no longer any need to consider erasing proofs of_≤″_
...?) and hence perhaps to the deprecation of_≤″_
altogether, cf. Remove (almost!) all external use of_≤″_
beyondData.Nat.*
#2262 - Modular arithmetic! (See link to draft branch at top)
Previously...
This cashes out as the following record DivMod (dividend divisor : ℕ) : Set where
constructor result
field
quotient : ℕ
remainder : ℕ< divisor
property : dividend ≡ ⟦ remainder ⟧ + quotient * divisor
nonZeroDivisor : NonZero divisor
nonZeroDivisor = nonZeroIndex remainder
infixl 7 _div_ _mod_ _divMod_
_div_ : (dividend divisor : ℕ) .{{_ : NonZero divisor}} → ℕ
_div_ = _/_
_mod_ : (dividend divisor : ℕ) .{{_ : NonZero divisor}} → ℕ< divisor
m mod n = ⟦ m % n ⟧< (m%n<n m n)
_divMod_ : (dividend divisor : ℕ) .{{_ : NonZero divisor}} →
DivMod dividend divisor
m divMod n = result (m / n) (m mod n) $ m≡m%n+[m/n]*n m n and ( _divMod_ : (dividend divisor : ℕ) → .{{ NonZero divisor }} →
DivMod dividend divisor
m divMod n = result (m / n) (m mod n) $ ≡-erase $ m≡m%n+[m/n]*n m n Suggestions on how to proceed, if, like me, you find these compelling. |
I think I proved |
Aaargh... |
constructor ⟦_⟧<_ | ||
field | ||
⟦_⟧ : ℕ | ||
.bounded : ⟦_⟧ < n |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think we should use Data.Irrelevant
because we don't have irrelevant projections
and so manipulating these records is annoying in my experience.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Well, in that case, it's probably better simply to define this as an instance of Data.Refinement
?
That being so, I'll reconvert to DRAFT
and take it off the v2.2 table for the time being...
So what's needed to finish this? Could this be v.2.4? |
I think that it could. But there was quite a lot of discussion, IIRC, which seemed to question whether we actually want this in the library. Technically, it's uncoupled from any proposal for I guess one thing we could do woul dbe badge it as v2.4, re-review, merge if successful, and then end up deciding later that we don't actually want it? Worse things happen... ;-) |
If it's going to be immediately orphaned, I'm much less keen to pull it in. Feels like we may as well wait for v3.0 to make sure this is the right design, including for |
For the record, I'm still in this camp. We need a compelling use case to justify adding in another representation. |
@MatthewDaggitt thanks for the fedback. For me, changing the abstract interface Previously, you wrote
I think that your recent comments re: Currently the We do already have 'duplicate but equivalent' representations of |
While I agree with you that the interface of |
@MatthewDaggitt Ah!... OK, fair enough. Looking back at |
Prompted by a recent discussion on the Agda Zulip, and realising that we don't actually have the details of this spelt out in
Data.Fin
as such...... and I decided to post it as a PR directly, rather than go via a separate issue first.
Outstanding issues:
(eg. why can't I call thevalue
field⟦_⟧
directly?)README
contribution?README.Data.Refinement
example ofData.Refinement
?isBounded
as a manifest field, but Agda complains that it needs the unsafe--irrelevant-projections
flag to do this, whereas the pattern-matching version is fine? issue raised as [bug?] Mismatch between pattern-matching and manifestrecord
field requiringunsafe
irrelevant projection? agda#7063the version offromℕ<
here as a possible improvement onData.Fin.Base.fromℕ<
;toFin
/fromFin
;toℕ
/fromℕ
;Number
literals; cf. Literals for any ring? #1363 , ahead of anyStructures
/{Raw}Bundles
instances...at: https://github.com/jamesmckinna/agda-stdlib/blob/modular-arithmetic/src/Data/Integer/Modulo.agda (will raise separate PR when/if this gets approval)see Modular arithmetic based onData.Nat.Bounded
#2257 #2292 ;If approved, then I would refactor to reflect the customary
Data.X.Base|Properties|Literals|Show|...
hierarchical decomposition... DONEComments welcome!